|
280331
|
- |
|
oracle
|
oracle10g
oracle9i
|
Multiple cross-site scripting (XSS) vulnerabilities in Oracle Portal 9i and 10g allow remote attackers to inject arbitrary JavaScript via the tc parameter in webapp/jsp/container_tabs.jsp, and other …
|
NVD-CWE-Other
|
CVE-2006-6703
|
2018-10-18 06:49 |
2006-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280332
|
- |
|
powerscripts
|
powerclan
|
PHP remote file inclusion vulnerability in footer.inc.php in PowerClan 1.14a and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the sett…
|
NVD-CWE-Other
|
CVE-2006-6715
|
2018-10-18 06:49 |
2006-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280333
|
- |
|
alliedtelesyn
|
at-9000_24_ethernetswitch
|
The Allied Telesis AT-9000/24 Ethernet switch accepts management packets from arbitrary VLANs, contrary to the documentation, which allows remote attackers to conduct attacks against the switch from …
|
NVD-CWE-Other
|
CVE-2006-6717
|
2018-10-18 06:49 |
2006-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280334
|
- |
|
alliedtelesyn
|
at-9000_24_ethernetswitch
|
The Allied Telesis AT-9000/24 Ethernet switch has a default password for its admin account, "manager," which allows remote attackers to perform unauthorized actions.
|
NVD-CWE-Other
|
CVE-2006-6718
|
2018-10-18 06:49 |
2006-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280335
|
- |
|
netbsd
openbsd
|
netbsd
openbsd
|
OpenBSD and NetBSD permit usermode code to kill the display server and write to the X.Org /dev/xf86 device, which allows local users with root privileges to reduce securelevel by replacing the System…
|
NVD-CWE-Other
|
CVE-2006-6730
|
2018-10-18 06:49 |
2006-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280336
|
- |
|
osticket
|
osticket_sts
|
Cross-site scripting (XSS) vulnerability in support/view.php in Support Cards 1 (osTicket) allows remote attackers to inject arbitrary web script or HTML via the e parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2006-6733
|
2018-10-18 06:49 |
2006-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280337
|
- |
|
obie_website
|
mini_web_shop
|
Cross-site scripting (XSS) vulnerability in modules/viewcategory.php in Minh Nguyen Duong Obie Website Mini Web Shop 2.1.c allows remote attackers to inject arbitrary web script or HTML via the catna…
|
CWE-79
Cross-site Scripting
|
CVE-2006-6734
|
2018-10-18 06:49 |
2006-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280338
|
- |
|
obie_website
|
mini_web_shop
|
modules/viewcategory.php in Minh Nguyen Duong Obie Website Mini Web Shop 2.1.c allows remote attackers to obtain sensitive information via a request with an arbitrary catname parameter but no itemsdb…
|
CWE-200
Information Exposure
|
CVE-2006-6735
|
2018-10-18 06:49 |
2006-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280339
|
- |
|
mkportal
|
mkportal
|
Cross-site request forgery (CSRF) vulnerability in urlobox in MKPortal allows remote attackers to delete arbitrary messages as an administrator via a delete operation in an img BBcode tag.
|
CWE-352
Origin Validation Error
|
CVE-2006-6741
|
2018-10-18 06:49 |
2006-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280340
|
- |
|
hp
|
ftp_print_server
laserjet_5000
laserjet_5100
|
Multiple buffer overflows in FTP Print Server 2.4 and 2.4.5 in HP LaserJet 5000 Series printers with firmware R.25.15 or R.25.47, and HP LaserJet 5100 Series printers with firmware V.29.12, allow rem…
|
NVD-CWE-Other
|
CVE-2006-6742
|
2018-10-18 06:49 |
2006-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
